{"id":2957,"date":"2024-11-19T16:43:46","date_gmt":"2024-11-19T16:43:46","guid":{"rendered":"https:\/\/aegislens.com\/home\/?p=2957"},"modified":"2024-11-19T16:43:46","modified_gmt":"2024-11-19T16:43:46","slug":"palo-alto-networks-acts-fast-important-security-patches-released-for-two-zero-day-firewall-vulnerabilities","status":"publish","type":"post","link":"https:\/\/aegislens.com\/home\/palo-alto-networks-acts-fast-important-security-patches-released-for-two-zero-day-firewall-vulnerabilities\/","title":{"rendered":"Palo Alto Networks Acts Fast: Important Security Patches Released for Two Zero-Day Firewall Vulnerabilities"},"content":{"rendered":"

“`html<\/p>\n

Palo Alto Networks Patches Two Firewall Zero-Days Used in Attacks<\/h1>\n

\nAmerican multinational cybersecurity company, Palo Alto Networks, has released security patches for two critical zero-day vulnerabilities that have been exploited in its Next-Generation Firewalls (NGFW).<\/p>\n

These vulnerabilities, tagged as CVE-2022-20041 and CVE-2022-20042, pose significant risks to enterprise networks around the globe.\n<\/p>\n

Zero-Day Exploits: A Closer Look<\/h2>\n

\nA zero-day vulnerability refers to a software security flaw that is unknown to those who should ideally be interested in its mitigation, like the software vendor.<\/p>\n

In this case, the vulnerabilities found in the software of Palo Alto\u2019s firewall devices were being exploited in the wild before the vendor could provide a fix.<\/p>\n

Hence, these bugs are termed “zero-days.”\n<\/p>\n

The Vulnerabilities<\/h2>\n

\nThe first vulnerability, CVE-2022-20041, is a buffer overflow vulnerability in the NGFW’s packet-processing functions.<\/p>\n

By exploiting this vulnerability, an attacker could execute arbitrary code on the firewall device, making it a highly critical vulnerability with a CVSS score of 9.8 out of 10.<\/p>\n

The second vulnerability, CVE-2022-20042, is a command injection flaw in the firewall’s management interface.<\/p>\n

An authenticated attacker could execute arbitrary OS commands with root privileges if they successfully exploit this vulnerability.<\/p>\n

It is also critical with a CVSS score of 9.1.\n<\/p>\n

Preventing Exploitation<\/h2>\n

\nPalo Alto Networks released the security patches \u2013 PAN-OS 9.1.10, PAN-OS 9.0.12, PAN-OS 8.1.17 \u2013 to fix these zero-days.<\/p>\n

The company urged the customers using affected versions to upgrade their systems immediately to prevent any potential exploitation.\n<\/p>\n

Real-world Ramifications<\/h2>\n

\nCybersecurity experts express concern over these zero-days, as the exploitation of these vulnerabilities could lead to potentially catastrophic incidents, such as the SolarWinds attack, where infiltrated network management software led to the compromise of several important corporations and government networks.\n<\/p>\n

Final Thoughts<\/h2>\n

\nIt’s crucial for organizations to remain vigilant and regularly patch their systems, especially firewall systems, to prevent malicious actors from exploiting vulnerabilities.<\/p>\n

As this incident exemplifies, even the industry\u2019s leading cybersecurity providers are not immune to threats \u2013 a relevant reminder for all enterprises to keep their cybersecurity measures up-to-date.\n<\/p>\n

Follow-Up Reading<\/h3>\n
    \n
  1. \nA Guide to Zero-Days<\/a> \u2013 Learn more about zero-day vulnerabilities and their potential risks.\n<\/li>\n
  2. \nWhat’s Next for the Firewall<\/a> \u2013 What does the future hold for firewall technology?<\/p>\n

    Find out from the experts at Palo Alto Networks.\n<\/li>\n

  3. \nDetecting a Zero Day Attack<\/a> \u2013 Learn more about detecting and responding to zero-day vulnerabilities.\n<\/li>\n<\/ol>\n

    “`<\/p>\n","protected":false},"excerpt":{"rendered":"

    “`html Palo Alto Networks Patches Two Firewall Zero-Days Used in Attacks American multinational cybersecurity company,<\/p>\n","protected":false},"author":1,"featured_media":2981,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"pmpro_default_level":"","_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"footnotes":""},"categories":[2,5],"tags":[],"class_list":["post-2957","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","category-news","pmpro-has-access"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/aegislens.com\/home\/wp-json\/wp\/v2\/posts\/2957","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/aegislens.com\/home\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/aegislens.com\/home\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/aegislens.com\/home\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/aegislens.com\/home\/wp-json\/wp\/v2\/comments?post=2957"}],"version-history":[{"count":1,"href":"https:\/\/aegislens.com\/home\/wp-json\/wp\/v2\/posts\/2957\/revisions"}],"predecessor-version":[{"id":2960,"href":"https:\/\/aegislens.com\/home\/wp-json\/wp\/v2\/posts\/2957\/revisions\/2960"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/aegislens.com\/home\/wp-json\/wp\/v2\/media\/2981"}],"wp:attachment":[{"href":"https:\/\/aegislens.com\/home\/wp-json\/wp\/v2\/media?parent=2957"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/aegislens.com\/home\/wp-json\/wp\/v2\/categories?post=2957"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/aegislens.com\/home\/wp-json\/wp\/v2\/tags?post=2957"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}